Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3f524689463aec904c340871713a4788

  • Size

    1000KB

  • Sample

    240103-3m3rksfag3

  • MD5

    3f524689463aec904c340871713a4788

  • SHA1

    8807ef005f0ac1a36612aa4a07d5f55173ef1b10

  • SHA256

    01438010d38ee55562c45c88b5ff53186cf18e55917254db3567f8b96797e556

  • SHA512

    2dcf477008698550f9d0de98d7e48a4199a94519e6540cc824307bbeddb6c072befca68125147a2ffeb5e4038c15fa2ddcc979ed96fd0f55e25f07703621bb67

  • SSDEEP

    24576:ZIQh9Fc5ERz+mZk7j4GI1B+5vMiqt0gj2ed:ZIQhjc5ERz+CSCqOL

Score
7/10

Malware Config

Targets

    • Target

      3f524689463aec904c340871713a4788

    • Size

      1000KB

    • MD5

      3f524689463aec904c340871713a4788

    • SHA1

      8807ef005f0ac1a36612aa4a07d5f55173ef1b10

    • SHA256

      01438010d38ee55562c45c88b5ff53186cf18e55917254db3567f8b96797e556

    • SHA512

      2dcf477008698550f9d0de98d7e48a4199a94519e6540cc824307bbeddb6c072befca68125147a2ffeb5e4038c15fa2ddcc979ed96fd0f55e25f07703621bb67

    • SSDEEP

      24576:ZIQh9Fc5ERz+mZk7j4GI1B+5vMiqt0gj2ed:ZIQhjc5ERz+CSCqOL

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks